All Downloads are FREE. Search and download functionalities are using the official Maven repository.
  • Log In
  • Register

    • main.wisp.client.HttpClientFactory.kt Maven / Gradle / Ivy

    package wisp.client

import okhttp3.Interceptor
import okhttp3.OkHttpClient
import okhttp3.Protocol
import wisp.resources.ResourceLoader
import wisp.security.ssl.SslContextFactory
import wisp.security.ssl.SslLoader
import java.io.File
import java.net.Proxy
import javax.net.ssl.X509TrustManager

class HttpClientFactory @JvmOverloads constructor(
    private val sslLoader: SslLoader = SslLoader(ResourceLoader.SYSTEM),
    private val sslContextFactory: SslContextFactory = SslContextFactory(sslLoader),
    private val okHttpClientCommonConfigurator: OkHttpClientCommonConfigurator = OkHttpClientCommonConfigurator(),
    private val envoyClientEndpointProvider: EnvoyClientEndpointProvider? = null,
    private val okhttpInterceptors: List? = null,
) {
    /** Returns a client initialized based on `config`. */
    fun create(config: HttpClientEndpointConfig): OkHttpClient {
        // TODO(mmihic): Cache, proxy, etc
        val builder = unconfiguredClient.newBuilder()
        okHttpClientCommonConfigurator.configure(builder = builder, config = config)
        config.clientConfig.ssl?.let {
            val trustStore = sslLoader.loadTrustStore(it.trust_store)!!
            val trustManagers = sslContextFactory.loadTrustManagers(trustStore.keyStore)
            val x509TrustManager = trustManagers.mapNotNull { it as? X509TrustManager }.firstOrNull()
                ?: throw IllegalStateException("no x509 trust manager in ${it.trust_store}")
            val sslContext = sslContextFactory.create(it.cert_store, it.trust_store)
            builder.sslSocketFactory(sslContext.socketFactory, x509TrustManager)
        }

        require(config.envoy == null || config.clientConfig.unixSocketFile == null) {
            "Setting both `envoy` and `unixSocketFile` on `HttpClientEndpointConfig` is not supported!"
        }

        require(config.envoy == null || config.clientConfig.protocols == null) {
            "Setting both `envoy` and `protocols` on `HttpClientEndpointConfig` is not supported!"
        }

        config.clientConfig.unixSocketFile?.let {
            builder.socketFactory(UnixDomainSocketFactory(File(it)))
            // No DNS lookup needed since we're just sending the request over a socket.
            builder.dns(NoOpDns)
            // Proxy config not supported
            builder.proxy(Proxy.NO_PROXY)
        }

        config.clientConfig.protocols
            ?.map { Protocol.get(it) }
            ?.let { builder.protocols(it) }

        config.envoy?.let {
            builder.socketFactory(
                UnixDomainSocketFactory(envoyClientEndpointProvider!!.unixSocket(config.envoy))
            )
            // No DNS lookup needed since we're just sending the request over a socket.
            builder.dns(NoOpDns)
            // Proxy config not supported
            builder.proxy(Proxy.NO_PROXY)
            // OkHttp <=> envoy over h2 has bad interactions, and benefit is marginal
            builder.protocols(listOf(Protocol.HTTP_1_1))
        }

        okhttpInterceptors?.let {
            builder.interceptors().addAll(it)
        }

        return builder.build()
    }

    companion object {
        private val unconfiguredClient = OkHttpClient()
    }
}




    © 2015 - 2025 Weber Informatics LLC | Privacy Policy